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What is claimed is: 

1 . A method for authentication of an entity in a motive vehicle by a trusted gateway 
residing in the vehicle, wherein the entity is either one of a gateway or a vehicle system, 
the method comprising steps of: 

receiving a request for service for the entity; 
determining whether the entity is an authenticated entity; and 
when the entity is not an authenticated entity, authenticating the entity to produce 
an authenticated entity. 

2. The method of claim 1, wherein the step of determining whether the entity is an 
authenticated entity comprises a step of determining whether the entity is an authenticated 
entity by reference to a list of authenticated entities. 

3. The method of claim 1, further comprising a step of adding the entity to a list of 
authenticated entities when the entity is authenticated. 

4. The method of claim 1, further comprising a step of, when the entity is an 
authenticated entity, granting the request for service. 

5. The method of claim 1, wherein the step of authenticating the entity comprises 
steps of: 

requesting, from the entity, a certificate comprising a vehicle manufacturer 
signature; 

receiving a message comprising the requested certificate; and 
determining whether the entity is an authenticated entity based on the received 
message. 

6. The method of claim 5, wherein the message comprising the requested certificate 
further comprises an entity signature and an entity manufacturer signature. 
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7. The method of claim 6, wherein the step of authenticating the entity further 
comprises steps of: 

verifying at least one of the vehicle manufacturer signature, the entity signature, 
and the entity manufacturer signature; and 

wherein the step of determining whether the entity is an authenticated entity 
comprises a step of determining whether the entity is an authenticated entity based on the 
verification of at least one of the vehicle manufacturer signature, the entity signature, and 
the entity manufacturer signature. 

8. The method of claim 1, wherein the step of authenticating the entity comprises 
steps of: 

generating a first random number; 

conveying, to the entity, the first random number and a request that the entity send 
a certificate comprising a vehicle manufacturer signature; 

receiving a message comprising the certificate having a vehicle manufacturer 
signature and further comprising an entity signature, an entity manufacturer signature, the 
first random number, and a second random number; and 

wherein the step of determining whether the entity is an authenticated entity 
comprises a step of determining whether the entity is an authenticated entity based on the 
verification of at least one of the vehicle manufacturer signature, the entity signature, and 
the entity manufacturer signature. 

9. The method of claim 1, further comprising steps of: 

when the entity is an authenticated entity, generating a session key; and 
securely conveying the session key to the authenticated entity. 

10. The method of claim 1, further comprising a step of determining whether to 
reprogram the entity when the second entity is an authenticated entity. 

11. The method of claim 10, wherein the step of determining whether to reprogram 
the entity comprises steps of: 

retrieving vehicle system status information from the entity; and 
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determining whether to reprogram the entity based on the retrieved vehicle system 
status information. 

12. The method of claim 10, further comprising steps of 

in response to a determination to reprogram the entity, reprogramming the entity 
with new software; 

when the entity is reprogrammed, executing the new software by the entity to 
produce a result; 

conveying the result to the trusted entity; and 

determining whether the reprogramming is successful based on the result. 

13. The method of claim 12, wherein the entity is a vehicle system that comprises 
vehicle system status information and wherein the method further comprises steps of: 

retrieving vehicle system status information from the entity; and 
transmitting the retrieved vehicle system status information. 

14. The method of claim 13, further comprising a step of receiving new software in 
response to the transmission of vehicle system status information. 

15. The method of claim 13, wherein the vehicle system status information comprises 
at least one of a current date, a current time, a current location of the vehicle, a current 
mileage of the vehicle, a vehicle identification number, and an engine diagnostic code. 

16. The method of claim 1, further comprising steps of: 

when the entity is determined to be an authenticated entity, generating a session 
key; and 

securely conveying the session key to the authenticated entity. 
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17. An apparatus for authenticating an entity in a vehicle, the apparatus comprising: 

a first, trusted entity residing in the vehicle that receives a service request from a 
second entity residing in the vehicle, determines whether the second entity is an 
authenticated entity in response to the request, and when the second entity is not an 
authenticated entity, authenticates the second entity to produce an authenticated entity. 

18. The apparatus of claim 17, wherein the trusted entity stores a list of authenticated 
entities and determines whether the second entity is an authenticated entity by reference 
to the list. 



19. The apparatus of claim 17, wherein the trusted entity stores a list of authenticated 
entities and adds the second entity to the list when the trusted entity authenticates the 
second entity. 

20. The apparatus of claim 17, wherein the trusted entity comprises a vehicle 
manufacturer public key, wherein the trusted entity requests, from the second entity, a 
certificate comprising a vehicle manufacturer signature and, in response to the request for 
the certificate, receives a message comprising the requested certificate, and wherein the 
trusted entity authenticates the second entity based on the received message. 

21. The apparatus of claim 20, wherein the message comprising a vehicle 
manufacturer signature further comprises a second entity manufacturer signature and a 
second entity signature. 

22. The method of claim 21, wherein the trusted entity authenticates the second entity 
by verifying at least one of the vehicle manufacturer signature, the second entity 
manufacturer signature, and the second entity signature. 

23. The apparatus of claim 17, wherein the trusted entity further generates a first 
random number, conveys, to the second entity, the first random number and a request that 
the second entity send a certificate comprising a vehicle manufacturer signature, receives, 
in response to conveying the request for the certificate, a message comprising the first 
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random number, a second random number, and the certificate having a vehicle 
manufacturer signature, and authenticates the second entity based on the received 
message, 

24. The apparatus of claim 1 7, wherein the trusted entity generates a session key when 
the second entity is an authenticated entity and securely conveys the session key to the 
second entity. 

25. The apparatus of claim 17, wherein the trusted entity conveys a service grant to 
the second entity when the second entity is an authenticated entity. 

26. The apparatus of claim 17, wherein the second entity is a vehicle system that 
comprises vehicle system information and wherein the trusted entity retrieves vehicle 
system status information from the vehicle system and determines whether to reprogram 
the entity based on the vehicle system information. 
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27. In a vehicle in wireless communication with an infrastructure, an apparatus 
comprising: 

a first, trusted entity residing in the vehicle; 

a second entity residing in the vehicle and in communication with the trusted 
entity; and 

wherein the trusted entity receives a service request, determines whether the 
second entity is an authenticated entity in response to the service request, and, when the 
second entity is not an authenticated entity, authenticates the second entity to produce an 
authenticated entity. 

28. The apparatus of claim 27, wherein the trusted entity receives the service request 
from the infrastructure. 



29. The apparatus of claim 27, wherein the second entity conveys the service request 
to the trusted entity. 

30. The apparatus of claim 27, wherein the trusted entity stores a list of authenticated 
entities and determines whether the second entity is an authenticated entity by reference 
to a list of authenticated entities. 



3 1 . The apparatus of claim 27, wherein the trusted entity stores a list of authenticated 
entities and adds the second entity to a list of authenticated entities when the trusted entity 
authenticates the second entity 



32. The apparatus of claim 27, wherein the trusted entity comprises a vehicle 
manufacturer public key, wherein the trusted entity conveys a request to the second entity 
for a message comprising a vehicle manufacturer signature, wherein, in response to the 
request, the second entity conveys a message to the trusted entity comprising the vehicle 
manufacturer signature, and wherein the trusted entity authenticates the second entity 
based on the message. 
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33. The apparatus of claim 27, wherein the trusted entity comprises a vehicle 
manufacturer public key, wherein the second entity comprises a second entity private key, 
a certificate having a vehicle manufacturer signature, and a second entity manufacturer 
signature, wherein the trusted entity conveys a request to the second entity for a message 
5 comprising the vehicle manufacturer signature, wherein, in response to the request, the 
second entity conveys a message to the trusted entity comprising the vehicle manufacturer 
signature, the second entity manufacturer signature, and a second entity signature, and 
wherein the trusted entity authenticates the second entity based on the message. 

10 34. The apparatus of claim 33, wherein the trusted entity authenticates the second 
entity based on verification of at least one of the vehicle manufacturer signature, the 
13 entity signature, and the entity manufacturer signature. 
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35. The apparatus of claim 27, wherein the trusted entity conveys a service grant to 
F3 15 the second entity when the second entity is an authenticated entity. 
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IT 36. The apparatus of claim 27, wherein the trusted entity generates a first random 

|1 number and conveys, to the second entity, the first random number and a request that the 

second entity send a certificate comprising a vehicle manufacturer signature, wherein the 
20 second entity generates a second random number and conveys, to the trusted entity, a 

message comprising the first random number, the second random number, and the 

certificate having the vehicle manufacturer signature, and wherein the trusted entity 

authenticates the second entity based on the message. 

25 37. The apparatus of claim 36, wherein the message further comprises an entity 
signature and an entity manufacturer signature. 
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38. The apparatus of claim 27, wherein, when the second entity is an authenticated 
entity, the trusted entity determines whether to reprogram the entity and, in response to a 
determination to reprogram the entity, reprograms the second entity with new software. 
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39. The apparatus of claim 38, wherein the second entity is a vehicle system that 
comprises vehicle system information and wherein the trusted entity retrieves vehicle 
system status information from the vehicle system and determines whether to reprogram 
the entity based on the vehicle system information. 

40. The apparatus of claim 38, wherein, when the trusted entity reprograms the second 
entity, the second entity executes the new software to produce a result and conveys the 
result to the trusted entity, and wherein the trusted entity determines whether the 
reprogramming is successful based on the result. 

41. The apparatus of claim 27, wherein the second entity is a vehicle system that 
comprises vehicle system status information and wherein, when the second entity is an 
authenticated entity, the trusted entity retrieves vehicle system status information from the 
vehicle system and sends the retrieved vehicle system information to the infrastructure. 

42. The apparatus of claim 41, wherein, in response to sending the vehicle system 
status information to the infrastructure, the trusted entity receives new software and 
reprograms the second entity with the new software, wherein the second entity executes 
the new software to produce a result and conveys the result to the trusted entity, and 
wherein the trusted entity determines whether the reprogramming is successful based on 
the result. 



43. The method of claim 41, wherein the vehicle system status information comprises 
at least one of a current date, a current time, a current location of the vehicle, a current 
mileage of the vehicle, a vehicle identification number, and an engine diagnostic code. 

44. The method of claim 27, wherein the trusted entity generates a session key when 
the second entity is an authenticated entity and securely conveys the session key to the 
authenticated entity. 



